Merge branch 'master' into develop
commit
737968b8e0
44
CHANGES.md
44
CHANGES.md
|
@ -1,3 +1,27 @@
|
||||||
|
Synapse 1.66.0 (2022-08-31)
|
||||||
|
===========================
|
||||||
|
|
||||||
|
No significant changes since 1.66.0rc2.
|
||||||
|
|
||||||
|
This release removes the ability for homeservers to delegate email ownership
|
||||||
|
verification and password reset confirmation to identity servers. This removal
|
||||||
|
was originally planned for Synapse 1.64, but was later deferred until now. See
|
||||||
|
the [upgrade notes](https://matrix-org.github.io/synapse/v1.66/upgrade.html#upgrading-to-v1660) for more details.
|
||||||
|
|
||||||
|
Deployments with multiple workers should note that the direct TCP replication
|
||||||
|
configuration was deprecated in Synapse v1.18.0 and will be removed in Synapse
|
||||||
|
v1.67.0. In particular, the TCP `replication` [listener](https://matrix-org.github.io/synapse/v1.66/usage/configuration/config_documentation.html#listeners)
|
||||||
|
type (not to be confused with the `replication` resource on the `http` listener
|
||||||
|
type) and the `worker_replication_port` config option will be removed .
|
||||||
|
|
||||||
|
To migrate to Redis, add the [`redis` config](https://matrix-org.github.io/synapse/v1.66/workers.html#shared-configuration),
|
||||||
|
then remove the TCP `replication` listener from config of the master and
|
||||||
|
`worker_replication_port` from worker config. Note that a HTTP listener with a
|
||||||
|
`replication` resource is still required. See the
|
||||||
|
[worker documentation](https://matrix-org.github.io/synapse/v1.66/workers.html)
|
||||||
|
for more details.
|
||||||
|
|
||||||
|
|
||||||
Synapse 1.66.0rc2 (2022-08-30)
|
Synapse 1.66.0rc2 (2022-08-30)
|
||||||
==============================
|
==============================
|
||||||
|
|
||||||
|
@ -10,12 +34,6 @@ Bugfixes
|
||||||
Synapse 1.66.0rc1 (2022-08-23)
|
Synapse 1.66.0rc1 (2022-08-23)
|
||||||
==============================
|
==============================
|
||||||
|
|
||||||
This release removes the ability for homeservers to delegate email ownership
|
|
||||||
verification and password reset confirmation to identity servers. This removal
|
|
||||||
was originally planned for Synapse 1.64, but was later deferred until now.
|
|
||||||
|
|
||||||
See the [upgrade notes](https://matrix-org.github.io/synapse/v1.66/upgrade.html#upgrading-to-v1660) for more details.
|
|
||||||
|
|
||||||
Features
|
Features
|
||||||
--------
|
--------
|
||||||
|
|
||||||
|
@ -390,6 +408,20 @@ No significant changes since 1.62.0rc3.
|
||||||
|
|
||||||
Authors of spam-checker plugins should consult the [upgrade notes](https://github.com/matrix-org/synapse/blob/release-v1.62/docs/upgrade.md#upgrading-to-v1620) to learn about the enriched signatures for spam checker callbacks, which are supported with this release of Synapse.
|
Authors of spam-checker plugins should consult the [upgrade notes](https://github.com/matrix-org/synapse/blob/release-v1.62/docs/upgrade.md#upgrading-to-v1620) to learn about the enriched signatures for spam checker callbacks, which are supported with this release of Synapse.
|
||||||
|
|
||||||
|
## Security advisory
|
||||||
|
|
||||||
|
The following issue is fixed in 1.62.0.
|
||||||
|
|
||||||
|
* [GHSA-jhjh-776m-4765](https://github.com/matrix-org/synapse/security/advisories/GHSA-jhjh-776m-4765) / [CVE-2022-31152](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-31152)
|
||||||
|
|
||||||
|
Synapse instances prior to 1.62.0 did not implement the Matrix [event authorization rules](https://spec.matrix.org/v1.3/rooms/v10/#authorization-rules) correctly. An attacker could craft events which would be accepted by Synapse but not a spec-conformant server, potentially causing divergence in the room state between servers.
|
||||||
|
|
||||||
|
Homeservers with federation disabled via the [`federation_domain_whitelist`](https://matrix-org.github.io/synapse/latest/usage/configuration/config_documentation.html#federation_domain_whitelist) config option are unaffected.
|
||||||
|
|
||||||
|
Administrators of homeservers with federation enabled are advised to upgrade to v1.62.0 or higher.
|
||||||
|
|
||||||
|
Fixed by [#13087](https://github.com/matrix-org/synapse/pull/13087) and [#13088](https://github.com/matrix-org/synapse/pull/13088).
|
||||||
|
|
||||||
Synapse 1.62.0rc3 (2022-07-04)
|
Synapse 1.62.0rc3 (2022-07-04)
|
||||||
==============================
|
==============================
|
||||||
|
|
||||||
|
|
|
@ -1,3 +1,9 @@
|
||||||
|
matrix-synapse-py3 (1.66.0) stable; urgency=medium
|
||||||
|
|
||||||
|
* New Synapse release 1.66.0.
|
||||||
|
|
||||||
|
-- Synapse Packaging team <packages@matrix.org> Wed, 31 Aug 2022 11:20:17 +0100
|
||||||
|
|
||||||
matrix-synapse-py3 (1.66.0~rc2+nmu1) UNRELEASED; urgency=medium
|
matrix-synapse-py3 (1.66.0~rc2+nmu1) UNRELEASED; urgency=medium
|
||||||
|
|
||||||
* Update debhelper to compatibility level 12.
|
* Update debhelper to compatibility level 12.
|
||||||
|
|
|
@ -1200,7 +1200,7 @@ updated.
|
||||||
When setting up worker processes, we now recommend the use of a Redis
|
When setting up worker processes, we now recommend the use of a Redis
|
||||||
server for replication. **The old direct TCP connection method is
|
server for replication. **The old direct TCP connection method is
|
||||||
deprecated and will be removed in a future release.** See
|
deprecated and will be removed in a future release.** See
|
||||||
[workers](workers.md) for more details.
|
the [worker documentation](https://matrix-org.github.io/synapse/v1.66/workers.html) for more details.
|
||||||
|
|
||||||
# Upgrading to v1.14.0
|
# Upgrading to v1.14.0
|
||||||
|
|
||||||
|
|
|
@ -431,7 +431,7 @@ Sub-options for each listener include:
|
||||||
|
|
||||||
* `metrics`: (see the docs [here](../../metrics-howto.md)),
|
* `metrics`: (see the docs [here](../../metrics-howto.md)),
|
||||||
|
|
||||||
* `replication`: (see the docs [here](../../workers.md)).
|
* `replication`: (deprecated as of Synapse 1.18, see the docs [here](../../workers.md)).
|
||||||
|
|
||||||
* `tls`: set to true to enable TLS for this listener. Will use the TLS key/cert specified in tls_private_key_path / tls_certificate_path.
|
* `tls`: set to true to enable TLS for this listener. Will use the TLS key/cert specified in tls_private_key_path / tls_certificate_path.
|
||||||
|
|
||||||
|
|
|
@ -54,7 +54,7 @@ skip_gitignore = true
|
||||||
|
|
||||||
[tool.poetry]
|
[tool.poetry]
|
||||||
name = "matrix-synapse"
|
name = "matrix-synapse"
|
||||||
version = "1.66.0rc2"
|
version = "1.66.0"
|
||||||
description = "Homeserver for the Matrix decentralised comms protocol"
|
description = "Homeserver for the Matrix decentralised comms protocol"
|
||||||
authors = ["Matrix.org Team and Contributors <packages@matrix.org>"]
|
authors = ["Matrix.org Team and Contributors <packages@matrix.org>"]
|
||||||
license = "Apache-2.0"
|
license = "Apache-2.0"
|
||||||
|
|
Loading…
Reference in New Issue